I need to add an app to the account page. (The one that is by an address *.myshopify.com/account, not the admin page). My plan is to load it in an iframe. The biggest problem is to identify the current user. I can do that by using customer.id variable, but that's insecure as hell.